]>
git.ipfire.org Git - thirdparty/suricata-update.git/log
summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Jason Ish [Fri, 1 Dec 2017 18:10:41 +0000 (12:10 -0600)]
changelog: update
Jason Ish [Fri, 1 Dec 2017 13:25:02 +0000 (07:25 -0600)]
list-sources: colourize
Jason Ish [Thu, 30 Nov 2017 23:07:20 +0000 (17:07 -0600)]
disable rules with proto's not enabled in suricata config
Jason Ish [Thu, 30 Nov 2017 21:57:22 +0000 (15:57 -0600)]
include git revision in version output
Jason Ish [Thu, 30 Nov 2017 19:27:12 +0000 (13:27 -0600)]
env var SOURCE_DIRECTORY to override default...
So tests won't pick up enabled sources...
Jason Ish [Thu, 30 Nov 2017 18:51:51 +0000 (12:51 -0600)]
add --now to skip the timebased check.
Jason Ish [Thu, 30 Nov 2017 17:25:47 +0000 (11:25 -0600)]
doc: rework heading levels
Jason Ish [Wed, 29 Nov 2017 22:40:53 +0000 (16:40 -0600)]
readme: update files and directories
Jason Ish [Thu, 30 Nov 2017 17:26:32 +0000 (11:26 -0600)]
don't require index for url sources
Also logs some exceptions in a more friendly way.
Jason Ish [Wed, 29 Nov 2017 22:38:24 +0000 (16:38 -0600)]
update.yaml: sources is now just a URL list
Jason Ish [Wed, 29 Nov 2017 12:33:55 +0000 (06:33 -0600)]
new commands: add-source, list-sources, list-enabled-sources
Jason Ish [Tue, 28 Nov 2017 22:45:27 +0000 (16:45 -0600)]
sources: resolve urls from index
Jason Ish [Tue, 28 Nov 2017 04:21:52 +0000 (22:21 -0600)]
update-sources: new command to download source index
Jason Ish [Tue, 28 Nov 2017 22:50:17 +0000 (16:50 -0600)]
et pro: mask the secret code
Jason Ish [Tue, 28 Nov 2017 22:44:47 +0000 (16:44 -0600)]
logging: add secret masking
Allows strings to be registered that will be masked
in the log output.
Jason Ish [Mon, 20 Nov 2017 21:15:54 +0000 (15:15 -0600)]
rule parsing: fix infinite loop on missing ;
If the last rule option was missing a ";" the parser would
enter an infinite loop. Instead error out with an exception
that can be logged.
Test case added.
From an reported on the idstools rule parser.
Jason Ish [Mon, 20 Nov 2017 21:11:20 +0000 (15:11 -0600)]
tests: remove BSD license.
All code has been assigned to the OISF under the GPLv2.
Breaker [Fri, 3 Nov 2017 03:29:14 +0000 (11:29 +0800)]
change --post-hook to --reload-command
Jason Ish [Tue, 14 Nov 2017 11:04:51 +0000 (12:04 +0100)]
doc: --cache-dir command line argument removed
Jason Ish [Tue, 14 Nov 2017 10:57:29 +0000 (11:57 +0100)]
Ingore cache directory when backing up rules.
Jason Ish [Tue, 14 Nov 2017 10:42:21 +0000 (11:42 +0100)]
Put cache directory under the rules directory.
One less directory to manage permissions on.
Jason Ish [Mon, 13 Nov 2017 08:57:23 +0000 (09:57 +0100)]
fix restoration permission issue after update fail
First attempt to just copy back the data of the files. Then
attempt to copy the mode, as the mode may fail if the user
running suricata-update doesn't own the files, but has permissions
to write to them with group permissions.
Jason Ish [Mon, 6 Nov 2017 04:27:01 +0000 (22:27 -0600)]
fix ET Open by default logic...
Somewhere along the line the behaviour of loading ET Open
if no other URLs were present was lost. Re-add this default
behaviour.
Loading ET-Open by default will happen if:
- no --urls passed on the command line
- no sources provided in the configuration
- no etpro code given
Victor Julien [Fri, 3 Nov 2017 14:19:11 +0000 (15:19 +0100)]
github/codeowners: add OISF/core-team
Add core team so all PRs get a reviewer assigned. When it's @jasonish
it will be just OISF/core-team, otherwise it'll be both. Then
@jasonish can approve in name of core-team as well.
Jason Ish [Fri, 3 Nov 2017 13:36:14 +0000 (07:36 -0600)]
rule parsing: don't warn if no msg present
Jason Ish [Fri, 3 Nov 2017 13:34:51 +0000 (07:34 -0600)]
issue 2261: don't fail on empty "local"
If local existed, but was empty, YAML would make it a None
value instead of the default empty list.
For local and sources, make sure they are an empty list after
loading instead of None.
Victor Julien [Thu, 2 Nov 2017 14:20:26 +0000 (15:20 +0100)]
rule testing: don't fail because of ASAN leak warnings
Jason Ish [Thu, 2 Nov 2017 13:46:07 +0000 (07:46 -0600)]
Fix Oinkmaster modifysid with group name.
Make the group name matcher the last matcher to be parsed,
and accept the match spec if it ends with .rules and not
prefixed with group.
This was broken while fixing up other issues in group name
parsing to make it more predictable.
Jason Ish [Thu, 2 Nov 2017 13:03:16 +0000 (07:03 -0600)]
Initial import of Suricata-Update.
Suricata-Update is a tool for updating Suricata rules. Based
on idstools-rulecat, but relicensed under the GPL and contributed
to the OISF.